Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4FELlwhaVsO7A7yJbOoxQNsAsI5Ko7IKNwiTQP8FNxQ=
Subject key identifier: C3:26:08:77:58:FE:AD:A7:A3:A9:C5:42:32:84:62:F2:CB:B3:05:A2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1F7CD338ACC071432136CE7922304C2867116F79
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:396::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:7c:d3:38:ac:c0:71:43:21:36:ce:79:22:30:4c:28:67:11:6f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=C326087758FEADA7A3A9C542328462F2CBB305A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:0f:8e:65:5e:75:ac:a8:79:d5:a8:88:30:
f3:33:27:e5:3f:9c:e5:89:64:e8:28:05:99:4b:28:
3a:18:28:7e:19:80:e2:b3:cd:18:6e:0f:bf:32:9f:
da:6d:97:3d:89:65:00:f1:97:ee:09:e6:7d:a6:3b:
c3:20:ef:19:a7:63:c7:26:b0:98:b3:5b:4c:43:7b:
0d:1f:fd:64:8d:25:12:ef:a0:e2:4d:ee:23:3b:8e:
d3:30:ff:1e:4f:89:c1:56:ac:ae:51:24:43:73:23:
aa:ed:83:9b:85:e7:92:26:d9:2f:06:90:85:15:f2:
19:42:8c:34:de:44:aa:0b:13:a3:a3:0f:c3:92:9d:
36:74:dd:3b:f6:7b:db:1a:df:50:ea:54:f4:72:65:
84:c1:81:3c:84:ca:9e:05:64:42:f6:f2:cf:3e:95:
e8:95:cd:23:88:e5:77:9a:ec:d6:8e:0c:8e:4c:0a:
f9:22:30:49:61:17:be:1b:16:f9:16:79:e2:56:c7:
18:b5:a9:08:27:3a:12:b8:33:58:d6:20:79:bf:1e:
d4:92:72:22:06:85:9f:42:11:42:1a:1d:f2:4d:3d:
94:a5:9c:90:37:c2:76:81:14:e9:1c:11:2d:02:a0:
21:c6:24:03:c6:ce:e8:b9:1d:03:d8:53:19:84:0c:
aa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:26:08:77:58:FE:AD:A7:A3:A9:C5:42:32:84:62:F2:CB:B3:05:A2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:396::/48
Signature Algorithm: sha256WithRSAEncryption
27:a3:07:27:2a:6d:f3:9b:0b:4d:75:6d:4f:d1:af:92:87:3d:
b9:74:9b:f5:66:e4:2d:9e:12:3d:d2:bf:88:f5:bb:35:36:3c:
11:c5:28:4c:63:91:9f:2e:b6:ff:4f:6a:77:73:be:b8:66:a4:
53:d2:91:f9:d4:62:0a:44:83:ac:7c:16:16:98:14:62:8a:3d:
3a:89:03:fc:1a:94:f9:00:1d:d5:c7:d8:4b:bd:bf:59:d2:55:
a9:27:77:5e:91:0d:33:2d:64:a1:41:48:0f:56:0f:00:d5:2b:
2c:1c:44:f5:0f:2e:2e:6c:6b:0e:03:6a:c6:e5:94:4a:69:77:
3e:69:e3:5c:36:75:e4:95:f3:14:25:cf:0a:62:db:9d:55:0c:
f6:fa:c3:b6:e6:ca:c2:eb:96:af:57:d9:88:2a:a5:ab:76:ff:
f3:ec:f9:c5:2f:99:15:dd:2a:aa:eb:ce:a6:64:42:01:2d:44:
30:32:87:8e:c6:12:ca:ea:be:8c:93:81:da:46:02:9f:ca:28:
91:49:d2:75:ae:6a:2b:b8:d4:39:6e:fe:f5:4a:c3:d2:c2:cf:
89:40:d7:35:4c:cb:b5:6d:19:4b:46:c3:6a:e9:00:ae:24:16:
25:a1:a3:d2:4e:91:63:a4:40:45:a4:fd:6b:a8:24:88:1a:91:
17:d4:a3:61
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUH3zTOKzAcUMhNs55IjBMKGcRb3kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjZaFw0yMzA5MjUxMTAwMjZaMDMxMTAvBgNV
BAMTKEMzMjYwODc3NThGRUFEQTdBM0E5QzU0MjMyODQ2MkYyQ0JCMzA1QTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38w+OZV51rKh51aiIMPMzJ+U/
nOWJZOgoBZlLKDoYKH4ZgOKzzRhuD78yn9ptlz2JZQDxl+4J5n2mO8Mg7xmnY8cm
sJizW0xDew0f/WSNJRLvoOJN7iM7jtMw/x5PicFWrK5RJENzI6rtg5uF55Im2S8G
kIUV8hlCjDTeRKoLE6OjD8OSnTZ03Tv2e9sa31DqVPRyZYTBgTyEyp4FZEL28s8+
leiVzSOI5Xea7NaODI5MCvkiMElhF74bFvkWeeJWxxi1qQgnOhK4M1jWIHm/HtSS
ciIGhZ9CEUIaHfJNPZSlnJA3wnaBFOkcES0CoCHGJAPGzui5HQPYUxmEDKrbAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUwyYId1j+raejqcVCMoRi8suzBaIwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzOTM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
ljANBgkqhkiG9w0BAQsFAAOCAQEAJ6MHJypt85sLTXVtT9Gvkoc9uXSb9WbkLZ4S
PdK/iPW7NTY8EcUoTGORny62/09qd3O+uGakU9KR+dRiCkSDrHwWFpgUYoo9OokD
/BqU+QAd1cfYS72/WdJVqSd3XpENMy1koUFID1YPANUrLBxE9Q8uLmxrDgNqxuWU
Sml3PmnjXDZ15JXzFCXPCmLbnVUM9vrDtubKwuuWr1fZiCqlq3b/8+z5xS+ZFd0q
quvOpmRCAS1EMDKHjsYSyuq+jJOB2kYCn8ookUnSda5qK7jUOW7+9UrD0sLPiUDX
NUzLtW0ZS0bDaukAriQWJaGj0k6RY6RARaT9a6gkiBqRF9SjYQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org